Microsoft find bugs on Chrome, Google Project Zero finds bugs on Microsoft Edge ¯\_(ツ)_/¯ https://blogs.technet.microsoft.com/mmpc/2017/10/18/browser-security-beyond-sandboxing/ #vulnerability
> Why are poorly skilled attackers successful?
> In the land of the blind, the one-eyed man is king.
Don't use a public VPN if you don't need one, reason #641: hide.me VPN will modify your HTTP requests, adding their website as referer 😐
You can bury all your coins in a bunker and still fall for phishing 🙄 https://qz.com/1103310/photos-the-secret-swiss-mountain-bunker-where-millionaires-stash-their-bitcoins/ #bitcoin
Analysis of Win32.ATMletcut, ATM #malware you could buy on AlphaBay in May 2017 https://securelist.com/atm-malware-is-being-sold-on-darknet-market/81871/ #cybercrime https://t.co/BJkzSoUB8H
CGN is the new Tor
French gov website about cyber risks provides only cleartext HTTP, no encryption 😩😭 http://www.gouvernement.fr/risques/risques-cybercc @ANSSI_FR @cybervictimes @CNNum https://t.co/ye69y1hKma
It doesn't capture password fields using EnableSecureEventInput https://developer.apple.com/library/content/technotes/tn2150/_index.html
Simple macOS Keylogger that doesn't require root permissions https://github.com/SkrewEverything/Swift-Keylogger #macos #malware #keylogger
It’s an interesting target, although you only get very volatile 0days considering bugs are already known & tagged to be fixed